Md Rahat Rahman
Akas

I'm a GRC & Cybersecurity Consultant specializing in ISO 27001:2022 audit-ready security programs, NIST CSF implementation, and offensive security. As a certified ISO 27001:2022 Lead Auditor (Mastermind Assurance) and Cisco Ethical Hacker, I help organizations globally achieve compliance, reduce risk, and build resilient security governance. My services span: ISO 27001 gap assessments & audits, NIST/GDPR/HIPAA/PCI-DSS compliance, penetration testing, vulnerability assessments, threat modeling, and OSINT. I also build custom security tools (malware sandboxes, compliance checkers) and deliver executive-level reporting. Bangladesh-based | Global clients | Remote-first

https://www.linkedin.com/in/mdrahatrahmanakas

https://x.com/rahatrahmanakas

https://github.com/mdrahatrahmanakas

Work experience

Independent / Self-Directed

February 2026 – Current time

Job title

Cybersecurity Consultant — GRC & Offensive Security

Work experience & achievements

Architecting ISO 27001 and NIST CSF-aligned security programs across GRC, risk management, and offensive security. Conducting gap assessments, designing audit-ready control environments, and performing penetration testing to identify vulnerabilities. Delivering executive-level compliance reports for global clients.

Genex Infosys Ltd. (Grameenphone Enterprise)

June 2023 – July 2025

Job title

Service Account Manager

Work experience & achievements

Managed enterprise client operations for Bangladesh's largest telecom. Oversaw SLA compliance, KPI monitoring, and cross-functional service delivery. Awarded Attrition Warrior Award (Sept 2023) for outstanding performance.

Company: Mist Leetcon / Riot Center

April 2022 – March 2023

Job title

Penetration Tester & Security Researcher

Work experience & achievements

Conducted penetration testing and vulnerability research across CTF environments and independent engagements. Identified critical system weaknesses, cryptographic flaws, and network entry points using offensive security techniques.